outflanknl / Spray-AD

Related projects: ⓘ

• outflanknl / Recon-AD
  Recon-AD, an AD recon tool based on ADSI and reflective DLL’s
  ☆312Updated 4 years ago
• tothi / rbcd-attack
  Kerberos Resource-Based Constrained Delegation Attack from Outside using Impacket
  ☆488Updated 2 years ago
• N7WEra / SharpAllTheThings
  The idea is to collect all the C# projects that are Sharp{Word} that can be used in Cobalt Strike as execute assembly command.
  ☆461Updated 2 years ago
• NotMedic / NetNTLMtoSilverTicket
  SpoolSample -> Responder w/NetNTLM Downgrade -> NetNTLMv1 -> NTLM -> Kerberos Silver Ticket
  ☆733Updated 3 years ago
• BC-SECURITY / Invoke-ZeroLogon
  Invoke-ZeroLogon allows attackers to impersonate any computer, including the domain controller itself, and execute remote procedure calls…
  ☆213Updated 3 years ago
• 0xthirteen / MoveKit
  Cobalt Strike kit for Lateral Movement
  ☆640Updated 4 years ago
• GoSecure / WSuspicious
  WSuspicious - A tool to abuse insecure WSUS connections for privilege escalations
  ☆339Updated 3 years ago
• 0xthirteen / StayKit
  Cobalt Strike kit for Persistence
  ☆462Updated 4 years ago
• optiv / Talon
  A password guessing tool that targets the Kerberos and LDAP services within the Windows Active Directory environment.
  ☆430Updated last year
• S3cur3Th1sSh1t / Invoke-SharpLoader
  ☆345Updated 3 years ago
• ZeroDayLab / PowerSploit
  PowerSploit - A PowerShell Post-Exploitation Framework
  ☆215Updated 2 years ago
• FuzzySecurity / StandIn
  StandIn is a small .NET35/45 AD post-exploitation toolkit
  ☆681Updated 9 months ago
• cfalta / PoshADCS
  A proof of concept on attack vectors against Active Directory by abusing Active Directory Certificate Services (ADCS)
  ☆177Updated 3 years ago
• boku7 / azureOutlookC2
  Azure Outlook Command & Control (C2) - Remotely control a compromised Windows Device from your Outlook mailbox. Threat Emulation Tool for…
  ☆457Updated last year
• cyberark / Evasor
  A tool to be used in post exploitation phase for blue and red teams to bypass APPLICATIONCONTROL policies
  ☆309Updated last year
• mandiant / ADFSpoof
  ☆348Updated last month
• hausec / ProxyLogon
  ☆289Updated 2 months ago
• mdsecactivebreach / Farmer
  ☆341Updated 3 years ago
• 0xthirteen / SharpMove
  .NET Project for performing Authenticated Remote Execution
  ☆369Updated last year
• busterb / msmailprobe
  Office 365 and Exchange Enumeration
  ☆176Updated 5 years ago
• josephkingstone / cobalt_strike_extension_kit
  ☆613Updated this week
• Flangvik / AzureC2Relay
  AzureC2Relay is an Azure Function that validates and relays Cobalt Strike beacon traffic by verifying the incoming requests based on a Co…
  ☆208Updated 3 years ago
• djhohnstein / SharpShares
  Enumerate all network shares in the current domain. Also, can resolve names to IP addresses.
  ☆272Updated 4 years ago
• skelsec / msldap
  LDAP library for auditing MS AD
  ☆357Updated 2 weeks ago
• bohops / WSMan-WinRM
  A collection of proof-of-concept source code and scripts for executing remote commands over WinRM using the WSMan.Automation COM object
  ☆219Updated 4 years ago
• BC-SECURITY / Invoke-PrintDemon
  This is a PowerShell Empire launcher PoC using PrintDemon and Faxhell.
  ☆197Updated 3 years ago
• deepinstinct / LsassSilentProcessExit
  Command line interface to dump LSASS memory to disk via SilentProcessExit
  ☆435Updated 3 years ago
• cube0x0 / SharpeningCobaltStrike
  ☆310Updated this week
• bohops / GhostBuild
  GhostBuild is a collection of simple MSBuild launchers for various GhostPack/.NET projects
  ☆244Updated 3 years ago
• padovah4ck / PSByPassCLM
  Bypass for PowerShell Constrained Language Mode
  ☆359Updated 2 years ago